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[SECURE FLASH MEMORY 
DEVICE AND METHOD OF 
OPERATION] 



[0001] 

[0002] 

[0003] 
[0004] 



[0005] 



ickground of Invention 

1. Field of the Invention 

The present invention relates to a flash memory storage device for a computer, 
and more specifically, to a flash memory storage device for a computer that is secured 
by a security program and a related method for providing security. 

2. Description of the Prior Art 

Computer storage media technology is evolving rapidly. While hard drives and 
CD-ROMs will still be around for years to come because of their high capacity and low 
cost, new forms of storage are constantly being developed. One technology that 
appears to have distinct advantages over conventional forms of storage is flash 
memory. Like conventional storage systems, flash memory is nonvolatile, requiring no 
power to maintain the stored information, and rewriteable, meaning that it can be 
used repeatedly with no degradation in quality. However, over conventional forms of 
storage flash memory chips are more reliable, allow for faster access, and can be 
made small enough to be portable. 

The high cost associated with flash memory makes hard drives and CD-ROMs 
more suitable for large volume storage applications (650MB to 160-1- GB). However, for 
applications requiring storage in the range of 8MB to 51 2MB, flash memory devices do 
offer several advantages. For instance, a flash memory device of this storage size can 
be made to be portable. This puts portable flash memory devices in competition with 
traditional portable storage devices such as 3-1/2" floppy disks and specialized high 
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capacity floppy disks, removable hard drives, and tape drives. In fact, portable flash 
memory devices have advantages over these devices as well. First, portable flash 
memory devices do not require a drive device to be installed in a computer, only an 
access port. Second, flash memory access is comparatively fast and does not require 
moving parts. Finally, portable flash memory devices are not magnetic media and 
therefore not susceptible to damage from magnetic fields. Because of this, portable 
flash memory devices will most likely replace other forms of reusable portable 



The majority of these devices connect to a computer either through a small 
reader/writer device connected to a port of the computer, or by directly connecting to 
a port of the computer, said ports typically being universal serial bus (USB) ports. 
Additionally, some of these flash memory devices provide data security in the form of 
password-protected access. However, the data security provided requires software to 
be separately installed on the computer. 

[0007] The prior art secure flash memory device requires separately supplied software to 
be installed on the computer prior to using the secure flash memory device. This 
software must be separately installed on all computers that a user wishes to use the 
flash memory device on, causing undue inconvenience to the user. Moreover, the 
software must be distributed on a CD, floppy disk, or through the Internet resulting in 
excessive expense for the producer of the flash memory device. 

Summary of Invention 

[0008] It is therefore a primary objective of the claimed invention to provide a flash 

memory storage device for a computer that is secured by a security program provided 
in the flash memory storage device. 

[0009] Briefly summarized, the claimed invention includes a connection port, a 

microcontroller, a flash memory, and a security program for limiting access to the 
flash memory. The security program provides pass code security and verification of 
this pass code determines how data can be exchanged between a computer to which 
the connection port is connected and the flash memory. 
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storage. 



[0006] 



Currently, there are a large number of portable flash memory devices available. 
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[0010] According to the claimed invention, the microcontroller controls the flow of data 
between the computer and the flash memory based on the pass code verification. 

[001 1] According to the claimed invention, the security program can be stored in the 
microcontroller or in the flash memory. 

[0012] According to the claimed invention, the security program can be executed by the 
computer, when the microcontroller receives flash memory access requests from the 
connection port. 

[0013] It is an advantage of the claimed invention that the security program instructs the 
microcontroller to limit access to the flash memory based on verification of the pass 
code. 

[0014] It is an advantage of the claimed invention that the security program is stored in 
the microcontroller or the flash memory and does not require a separate delivery and 
installation. 

[001 5] These and other objectives of the claimed invention will no doubt become obvious 
to those of ordinary skill in the art after reading the following detailed description of 
the preferred embodiment that is illustrated in the various figures and drawings. 

Brief Description of Drawings 

[001 6] Fig.l is a perspective view of a secure flash memory device according to the 
present invention. 

[001 7] Fig. 2 is a block diagram of the secure flash memory device of Fig.l according to 
the preferred embodiment of the present invention. 

[001 8] Fig. 3 is a flowchart of an operation of the secure flash memory device shown in 
Fig.2. 

[001 9] Fig.4 is a block diagram of the secure flash memory device of Fig.l according to a 
second embodiment of the present invention. 

Detailed Description 

[0020] 

The present invention is described in two embodiments. In the preferred 
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embodiment, a security program is stored in a flash memory, and a predetermined 
pass code is stored in a microcontroller. In a second embodiment, both the security 
program and the predetermined pass code are stored in the microcontroller. Both of 
these embodiments illustrate the teachings and accomplish the purpose of the 
present invention. 

[0021] Please refer to Fig. 1 , which shows a secure flash memory device 1 0 according to 
the present invention. The secure flash memory device 10 comprises a body 12, a 
connection port 14, and a removable protective cap 16. The connection port 14 is a 
universal serial bus (USB) port, but could also be an integrated drive electronics (IDE) 
port or any other typical computer interface port. When the protective cap 1 6 is 
removed, the connection port 14 can be connected to a corresponding connection 
port of a computer (ref. 40, Fig. 2) so that the secure flash memory device 1 0 can be 
accessed by the computer 40. The connection port 1 4 is designed to allow the secure 
flash memory device 1 0 to be connected to the computer 40 in a quick and 
convenient manner. The body 12 contains components that provide functionality to 
the secure flash memory device 10, and are described in greater detail with reference 
to Fig. 2. 

[0022] Referring to Fig. 2, the secure flash memory device 10 is shown connected to the 

computer 40 using the connection port 14. The secure flash memory device 1 0 further 
comprises a flash memory 20 and a microcontroller 22. The flash memory 20 can be 
partitioned and is used to store data. The microcontroller 22 includes a small memory 
24, which can be a random access memory (RAM) or a read only memory (ROM). The 
microcontroller 22 also controls the flash memory device 1 0 by accepting commands 
and requests from the computer 40 and controlling and regulating access to the flash 
memory 20 by the computer 40. Specifically, the microcontroller 22 interprets flash 
memory access requests issued by the computer 40 and controls the flash memory 20 
accordingly. 



[0023] 



Stored in the flash memory 20 is a security program 28. The security program 28 



uses only a small amount of space leaving the remainder of the flash memory 20 
available to be used as a bulk storage area 30, in which a user can store any data 
desired. The security program 28 works in conjunction with a predetermined pass 



APP ID 



10064414 



Page 4 of 17 



-SL ILJl *LJ1 O "TT "5" T -s 1UH jr .JL -IL 1L-S & 

# # 

code 32 stored in the memory 24 of the microcontroller 22 to direct the 
microcontroller 22 to either allow or prevent data to flow between the flash memory 
20 and the computer 40 connected to the connection port 1 4. The predetermined 
pass code 32 can be encrypted, to further prevent unauthorized access to the flash 
memory 20. The security program 28 can also include code that allows the 
predetermined pass code 32 to be modified by a user. Additionally, the security 
program 28 can control the graphical user interface (GUI) of the computer 40 to 
provide a user-friendly interface. 

[0024] When the user wishes to use the secure flash memory device 1 0, the user simply 
plugs the connection port 14 into the corresponding connection port of the computer 
40. In practical application there are many procedures executed by the computer 40 
to ensure a proper connection to the secure flash memory device 1 0, however, these 
are well know in the art. After the secure flash memory device 10 is connected to the 
computer 40 it is ready to be used as storage. However, by default the microcontroller 
22 prevents access, for reading or writing, to the bulk storage partition 30 of flash 
memory 20. 

[0025] Referencing Fig. 3, when the user wishes to read data from or write data to the 
secure flash memory device 10, the following occurs: 

[0026] Step 100:Start; 

[0027] Step 102: 

[0028] Using the computer 40, the user requests read or write access to the flash 

memory 20. Accordingly, this request is detected by the microcontroller 22, and the 
microcontroller 22 instructs the computer 40 to execute the security program 28. The 
security program 28 \then prom pts the user\to enter a pass code; 

[0029] Step 104: 

[0030] The pass code entered by the user is compared to the predetermined pass code 
32 stored in the memory 24 of the microcontroller 22. Does the entered pass code 
match the predetermined pass code 32? If they match, go to step 1 06, if they do not 
match, go to step 1 08; 
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[0031] 



Step 106: 



[0032] 



The microcontroller 22 allows access to the flash memory 20 by the computer 40. 



The user may now read and write information to the bulk storage partition 30 of the 
flash memory 20; 



[0033] 



Step 1 08: 



[0034] 



The microcontroller 22 prevents access to the flash memory 20 by the computer 



40. The user may not access the bulk storage partition 30 of the flash memory 20; 
[0035] Step 110:End. 



predetermined pass code 32. The microcontroller 22 then allows or restrict access to 
the bulk storage area 30 of the flash memory 20 in accordance with the verification of 
the entered pass code. The user can request read or write access to the flash memory 
20 by executing the security program 28, or performing another similar action. In 
situations where the verification of the entered pass code fails, the microcontroller 22 
blocks read or write access to the flash memory 20. This can be done, for example, by 
the microcontroller 22 simply ignoring write requests and returning insignificant 
values or meaningless contents to read requests, without issuing any error messages 
to the user indicating that read and write operations are unsuccessful. 

[0037] As mentioned previously, the security program 28 is stored in flash memory 20 
and the predetermined pass code 32 is stored in the memory 24 of the 
microcontroller 22. Storing the security program 28 in the flash memory 20 is done 
for convenience, but storing the predetermined pass code 32 in the memory 24 of the 
microcontroller 22 provides added protection since the memory 24 is not normally 
accessible by a user. Of course, the security program 28 may also be stored in the 
memory 24 of the microcontroller 22 as in a second embodiment of the present 
invention. 



Please refer to Fig. 4 showing a block diagram of the second embodiment of the 
present invention. A secure flash memory device 1 0" is connected to the computer 40. 
The difference between the secure flash memory device 10 and the secure flash 



[0036] 



As described, the security program 28 compares the entered pass code to the 



[0038] 
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memory device 1 0" is that in the secure flash memory device 1 0" the security program 
28 is stored in the memory 24 of the microcontroller 22. The functional difference of 
this being that the security program 28 cannot be accidentally overwritten as it may 
be if stored in the flash memory 20. In operation, the secure flash memory device 1 0" 
is substantially identical to the secure flash memory device 10. 

[0039] In a third embodiment, based on specific design considerations, a portion of the 
security program 28 can be stored in the memory 24 of the microcontroller 22 and 
another portion of the security program 28 can be stored in the flash memory 20. This 
allows the security program 28 to be as large as necessary, and still protects a portion 
of it from being accidentally overwritten. 

[0040] The security program 28 may be written in a variety of programming languages. 
One language that has a particular advantage is hypertext markup language (HTML). 
HTML is a language that can be understood be a wide array of operating systems such 
as Microsoft Windows, Mac OS, Unix, and Linux. Writing the security program 28 in 
HTML allows the flash memory device 10 to be cross-platform. In other words, unique 
security programs for separate operating systems are not required. Of course, HTML 
is only one choice of programming language for the security program 28 and other 
languages acceptable. 

[0041] Generally, the microcontroller 22 interprets flash memory 20 access requests from 
the computer 40 and allows or prevents data from being exchanged between the 
computer 40 and the flash memory 20. The entered pass code is compared to the 
predetermined pass code 32 by the security program 28. If the entered pass code 
matches the predetermined pass code 32, the user is allowed to access the bulk 
storage partition 30 of the flash memory 20. If the entered pass code does not match 
the predetermined pass code 32, the user is prevented access to the bulk storage 
partition 30 of the flash memory 20. The security program 28 and the predetermined 
pass code 32 can be stored wholly or partially in the flash memory 20 or in the 
memory 24 of the microcontroller 22. Naturally, the present invention can be applied 
as described so that the flash memory 20 is partitioned such that each partition has 
different predetermined pass codes for both read and write access. 

[0042] | n con trast to the prior art, the present invention provides a security program that 
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controls how a microcontroller provides access to a flash memory. The flash memory 
device stores the security program and no separate distribution and install of software 
is required. The security program when written in HTML can be interpreted by a wide 
variety of operating systems for which, in the prior art, separate security programs 
were required. For these reasons, the secure flash memory device according to the 
present invention is nearly universal, more efficient, and less costly than the prior art. 

[0043] Those skilled in the art will readily observe that numerous modifications and 

alterations of the device may be made while retaining the teachings of the invention. 
Accordingly, the above disclosure should be construed as limited only by the metes 
and bounds of the appended claims. 
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